Big update!Introducing GitHub Bot Commands. Learn more
Socket
Log inBook a demo

Dependency insights where you need them most

Integrate Socket directly into to your project flow and detect sensitive changes across your dependency tree as they happen.

GitHub App

Install the Socket GitHub app to receive real time dependency scanning and reports with every pull request.

Detect potential typo squats

Detect install scripts

Detect telemetry

Detect native code

Detect known malware

Detect troll packages

GitHub Checks support

Project Health Reports for every commit

Detect network access (coming soon)

Detect filesystem access (coming soon)

Detect obfuscated code (coming soon)

Customizable warnings and alert thresholds (coming soon)

60+ additional detections (coming soon) →
Install GitHub App

Socket CLI

Not using GitHub? Generate reports next to your tests with our CLI.

Coming Soon
Socket

Product

About

NPM Packages

Subscribe to our newsletter

Get open source security insights delivered straight into your inbox. Be the first to learn about new features and product updates.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc